01e843d990
A role was added to add a private key. This role is a companion that will remove the private key, as an extra precaution around the secret. There is a non-zero chance the nodepool resource will not get properly cleaned up, so we want to ensure that we do our best to clean out the secrets. Change-Id: Ib365b2d9304d7ccdc03df97b1d2ad924d6e8513b
10 lines
286 B
YAML
10 lines
286 B
YAML
- name: Remove ssh key
|
|
command: "shred ~/.ssh/id_rsa"
|
|
|
|
- name: remove host key information from known hosts
|
|
known_hosts:
|
|
name: "{{ ssh_key.fqdn }}"
|
|
key: "{{ ssh_key.ssh_known_hosts }}"
|
|
state: absent
|
|
when: ssh_key.ssh_known_hosts is defined and ssh_key.fqdn is defined
|